Learn languages naturally with fresh, real content!
Popular Topics
Explore By Region
A critical Windows WSUS flaw (CVE-2025-59287) enables remote code execution, prompting an emergency patch and urgent system updates.
Un fallo crítico de Windows WSUS (CVE-2025-59287) permite la ejecución remota de código, lo que provoca un parche de emergencia y actualizaciones urgentes del sistema. A critical, actively exploited vulnerability in Microsoft Windows Server Update Services (CVE-2025-59287) allows unauthenticated remote code execution due to insecure deserialization, with a 9.8 severity score. Microsoft issued an emergency out-of-band patch on October 23, 2025, after an initial fix proved insufficient. The flaw affects WSUS on Windows Server 2012 through 2025, and proof-of-concept exploit code is public. Attackers are targeting exposed WSUS servers on default ports, risking data theft and malicious updates. CISA and Dutch cybersecurity agencies warn unpatched systems are likely compromised. Microsoft urges immediate patching, recommends firewall blocking of ports 8530 and 8531 as a workaround, and advises migration from deprecated WSUS to newer tools like Intune.